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ActivCard GoIcJtm 



Specifications 
Industry Solutions 

ActivCard® Gold Datasheet 




ActivCard' 

buy now " 



Smart card-based digital identity solution 



Managed Digital Identity 

ActivCard Gold is the most complete smart card-based authentication and managed digital identity solution 
that operates on multi-vendor platforms. ActivCard Gold™ software works with leading card operating 
systems, applications, certificate authorities, and network environments-giving organizations the flexibility to 
make price/performance choices. Cardholders and administrators benefit from the optimal combination of 
security, usability, and manageability. 

Highlights 

One Powerful Card 

Consolidates in a single smart card-based solution multiple credentials, applets, policies, and profiles used 
to access a variety of e-business services. 

Flexible Open Architecture 

Ensures independence from vendors-now and in the future - and offers choices between applications, 
sen/ice providers, and deployment strategies. 

Remote Card Management 

Credentials and applets on the smart card can be centrally and remotely deployed and controlled post- 
issuance-without disrupting services. 

Portable Network Access 

Cardholders can use a single smart card to access a variety of network-based services from home, offices, 
kiosks, or anywhere with online access. 

Smooth Migration Paths 

Simultaneously supports all types of credentials for seamless migration from static passwords to more 
advanced dynamic passwords, biometrics, and digital certificates -and from traditional tokens to multi- 
application smart cards. 

Key Advantages 

• Open Industry Standards 

• Advanced Manageability 

• Enhanced Security 
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Open Industry Standards 
Open Platform Support 

ActivCard is committed to the GlobalPlatform cross-industry Open Platform initiative towards card 
infrastructure interoperability and management. ActivCard Gold: 

• Provides secure card initialization and personalization 

• Enables post-issuance updates of applets and credentials 

• Reduces the limitations and costs of a rigid card infrastructure 

• Allows card issuers to leverage their smart card platform 

• Provides multiple application card services 



Seamless Interoperability 

ActivCard Gold open architecture ensures seamless interoperability across a complex mix of heterogeneous 
systems and independence from vendors. Organizations have the flexibility to offer diverse services and to 
select from different deployment strategies and providers for: 

• Authentication technologies 

• Card operating systems 

• Directory services 

• Certificate authorities 

• Network management systems 



Flexible Integration 

ActivCard provides a set of application programming interfaces (APIs) that ensure compatibility across a 
variety of applications. Using these APIs, organizations can easily: 

• Enable applications and credentials to interoperate on multiple card operating systems 

• Integrate digital certificates, biometrics, and one-time-use passwords into applications 

• Leverage card applets for securely storing records, demographics, and cryptographic keys 



Advanced Manageability 
Post-Issuance Updates 

ActivCard Gold contains advanced client "hooks" that make it possible for administrators to remotely deploy 
and update the credentials, applets, and data on the smart card, and to instantly enforce policies. Once 
issued, cardholders can also personalize the content of their cards-if the administrator enabled these 
features. 

Consolidated Services 

ActivCard Gold consolidates multiple security credentials in a single secure smart card-allowing 
organizations to centralize policies and user profiles, leverage existing infrastructure, cut the costs of 
managing digital identity, and streamline business processes. Access to services can be controlled with a 
choice of static passwords, one-time-use passwords, biometrics, or digital certificates. 

Secure Card Management 

ActivCard Gold provides a secure channel for administrators to remotely issue, personalize, and manage 
cards. Communications between smart cards and server applications are made over public networks via a 
secure SSL driven HTTP connection using XML and SOAP messages. 

PIN Management 

Unlocking a smart card that has become locked from entering wrong PIN codes can be an operational 
challenge. ActivCard Gold enables administrators to remotely unlock cards via a secure channel or to 
provide authorized cardholders with randomly generated one-time-use unlock codes. These codes can 
never be guessed or reproduced because they are different every time. 

User-Level Administration 

Administrators can enable cardholders to review and manage their credentials and settings without the need 
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for other tools. An easy-to-use tree structure GUI allows end users to: 

• Manage PIN codes 

• Import new certificates 

• View certificate attributes 

• Manage static passwords 

• Define network login and dial-up configurations 



Ease of Deployment 

To streamline large-scale deployments of smart cards, organizations can centrally distribute, install, and 
upgrade ActivCard Gold using Microsoft® Installer/Active Directory™ capabilities. A "silent setup" can also 
be used to eliminate the need for end-user involvement. Administrators can pre-define user options and 
customize the master installation CD by: 

• Configuring the PIN and unlock policies 

• Adding and installing drivers and applications 

• Localizing all messages in any language 

• Branding all icons and messages 

Enhanced Security 
Familiar Login 

ActivCard Gold strong two-factor authentication requires something the user has and something the user 
knows. Cardholders simply insert their cards and enter their PINs into a familiar ATM-like interface. The 
credentials are then transparently processed for secure access to LAN, WAN, and Internet-based services. 
A single version of ActivCard Gold provides the same user experience across all platforms. 

PKI Integration 

ActivCard Gold tightly integrates with leading PKI vendors, delivering enhanced security, mobility, non- 
repudiation, and certificate ma nagement. ActivCard Gold strengthens PKI by adding two-factor 
authentication at the front end, and by storing private keys, public keys, and digital certificates on the smart 
card. The private key is generated and processed in the microchip on the card-and is never exposed 
outside this secure environment. 

Dynamic Passwords 

ActivCard Gold one-time use passwords are randomly generated with a patented three-variable algorithm 
and processed on the smart card. Dynamic passwords are different every time a cardholder logs into a 
system so they do not need to be memorized, and they can never be reused if intercepted during 
transmission. 

Automatic Card Lock 

If a user enters six consecutive wrong PIN entries, the smart card automatically "locks," and it cannot be 
used. This capability prevents non-trusted parties from stealing the card and trying many different PINs to 
access the credentials and applications on the card. The number of consecutive failed entries before the 
card locks can be configured either higher or lower by the administrator. 

Automatic Logout 

ActivCard Gold can be configured to automatically log out the user or lock the screen when the card is 
removed from the system. This security feature is ideal for terminals, kiosks, and computers that are shared 
by numerous cardholders in healthcare, government, financial, or corporate settings. 
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